Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
2.1
CVSSv2

CVE-2016-2383

Published: 27/04/2016 Updated: 31/01/2022
CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9
CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8
VMScore: 187
Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N
Subscribe to Linux Kernel

Vulnerability Summary

The adjust_branches function in kernel/bpf/verifier.c in the Linux kernel prior to 4.5 does not consider the delta in the backward-jump case, which allows local users to obtain sensitive information from kernel memory by creating a packet filter and then loading crafted BPF instructions.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

linux linux kernel

linux linux kernel 4.5.0

canonical ubuntu linux 14.04

canonical ubuntu linux 15.10

opensuse leap 42.1

Vendor Advisories

Ubuntu Security Notice: linux-lts-wily vulnerabilities
Several security issues were fixed in the kernel ...
Ubuntu Security Notice: linux-raspi2 vulnerabilities
Several security issues were fixed in the kernel ...
Ubuntu Security Notice: linux vulnerabilities
Several security issues were fixed in the kernel ...
Amazon Linux AMI: ALAS-2016-669
When running as a Xen 64-bit PV guest, user mode processes not supposed to be able to access I/O ports may be granted such permission, potentially resulting in one or more of in-guest privilege escalation, guest crashes (Denial of Service), or in-guest information leaks (CVE-2016-3157) In some cases, the kernel did not correctly fix backward jumps ...
Red Hat: CVE-2016-2383
The adjust_branches function in kernel/bpf/verifierc in the Linux kernel before 45 does not consider the delta in the backward-jump case, which allows local users to obtain sensitive information from kernel memory by creating a packet filter and then loading crafted BPF instructions ...

Github Repositories

https://github.com/dylandreimerink/gobpfld

GoBPFLD is a pure go eBPF loader/userspace library

GoBPFLD GoBPFLD is a pure go eBPF loader/userspace library as an alternative to using gobpf which requires CGO to work The goal of GoBPFLD is to provide a library for eBPF development which is comparable to libbpf(C library) but without CGO which improves the development experience WARNING GoBPFLD is currently not (yet) feature complete, and may lack critical features for s

References

NVD-CWE-noinfohttp://www.openwall.com/lists/oss-security/2016/02/14/1http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=a1b14d27ed0965838350f1377ff97c93ee383492https://bugzilla.redhat.com/show_bug.cgi?id=1308452https://github.com/torvalds/linux/commit/a1b14d27ed0965838350f1377ff97c93ee383492http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00015.htmlhttp://www.ubuntu.com/usn/USN-2947-1http://www.ubuntu.com/usn/USN-2947-2http://www.ubuntu.com/usn/USN-2947-3https://nvd.nist.govhttps://github.com/dylandreimerink/gobpfldhttps://usn.ubuntu.com/2947-2/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32886insecure direct object referenceCVE-2024-34342file inclusionCVE-2024-34562CVE-2024-34347CVE-2024-26026CVE-2024-4647unprivileged
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook